[c-nsp] FW: Static PAT problem
Andrew Herdman
andrew at whine.com
Tue Mar 22 15:41:28 EST 2005
Gert;
Yes, I am sure both of the static Port translations exist, I have telneted
to them from the router itself and they connect.
I performed a small shell script to test and get some debug info from the
router, so running "while true; do telnet x.x.x.254 81; done" and "debug ip
nat detail" running. I noticed that the only nat going on during this
entire time was my SSH session to the server doing the poking of port 81.
Not once did the log show a NAT attempt or anything for port 81... Hope
this tweaks some ideas.
Thanks
Andrew
-----Original Message-----
From: cisco-nsp-bounces at puck.nether.net
[mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Gert Doering
Sent: Tuesday, March 22, 2005 3:40 AM
To: Andrew Herdman
Cc: cisco-nsp at puck.nether.net
Subject: Re: [c-nsp] FW: Static PAT problem
Hi,
On Mon, Mar 21, 2005 at 08:29:27PM -0500, Andrew Herdman wrote:
> Since I get this right away;
>
> <1002> telnet x.x.x.254 81
> Trying x.x.x.254...
> telnet: Unable to connect to remote host: Connection refused
Are you sure the internal machine has a Web server running on port 80?
The translation entries look fine, but if there is no service, it will
of course send back a connection refused immediately.
> There is no translation associated with the attempt.
... and since there is no connection, you won't see a translation
entry either.
Try "debug ip nat" (while nothing else is going on!) to see what the
box is doing.
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany
gert at greenie.muc.de
fax: +49-89-35655025
gert at net.informatik.tu-muenchen.de
_______________________________________________
cisco-nsp mailing list cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
More information about the cisco-nsp
mailing list